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Intellectual Property Rights 



IPRs essential or potentially essential to the present document may have been declared to ETSI. The information 
pertaining to these essential IPRs, if any, is publicly available for ETSI members and non-members, and can be found 
in ETSI SR 000 314: "Intellectual Property Rights (IPRs); Essential, or potentially Essential, IPRs notified to ETSI in 
respect of ETSI standards", which is available from the ETSI Secretariat. Latest updates are available on the ETSI Web 
server ( http://webapp.etsi.org/IPR/home.asp ). 

Pursuant to the ETSI IPR Policy, no investigation, including IPR searches, has been carried out by ETSI. No guarantee 
can be given as to the existence of other IPRs not referenced in ETSI SR 000 314 (or the updates on the ETSI Web 
server) which are, or may be, or may become, essential to the present document. 



Foreword 

This Technical Specification (TS) has been produced by ETSI Technical Committee Access, Terminals, Transmission 
and Multiplexing (ATTM). 

The present document is part 5 of a multi-part deliverable covering Third Generation Transmission Systems for 
Interactive Cable Television Services - IP Cable modems. Full details of the entire series can be found in part 1 [i.l]. 



Introduction 



This European Standard (Cable DOCSIS 3.0 Network series) has been produced by ETSI Access, Terminals, 
Transmission and Multiplexing Technical Committee (ATTM), Cable Access Network sub-group. 
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Scope 



The present document defines the security requirements as part of a series of specifications for the third generation of 
high-speed Data-Over-Cable Systems Interface Specifications (DOCSIS®). 

They were developed for the benefit of the cable industry, including contributions by operators and vendors from, 
Europe, North America and other regions. 

The source material for this specification was provided by the ITU-T Recommendation J. 222. 3 [3] for which the most 
recent version can be found at http://www.itu.int/ITU-T/ . 



References 



References are either specific (identified by date of publication and/or edition number or version number) or 
non-specific. 

• For a specific reference, subsequent revisions do not apply. 

• Non-specific reference may be made only to a complete document or a part thereof and only in the following 

cases: 

if it is accepted that it will be possible to use all future changes of the referenced document for the 
purposes of the referring document; 

for informative references. 

Referenced documents which are not found to be publicly available in the expected location might be found at 
http://docbox.etsi.org/Reference . 

NOTE: While any hyperlinks included in this clause were valid at the time of publication ETSI cannot guarantee 
their long term vahdity. 

2.1 Normative references 

The following referenced documents are indispensable for the application of the present document. For dated 
references, only the edition cited applies. For non-specific references, the latest edition of the referenced document 
(including any amendments) applies. 

[1] ETSI TS 102 639-4: "Access and Terminals, Transmission and Multiplexing (ATTM); Third 

Generation Transmission Systems for Interactive Cable Television Services - IP Cable Modems; 
Part 4: MAC and Upper Layer Protocols ITU-T Recommendation J. 222.2 (07/2007), modified]". 

[2] ETSI TS 101 909-1 1 "Digital Broadband Cable Access to the PubUc Telecommunications 

Network; IP Multimedia Time Critical Services; Part 11: Security". 

[3] ITU-T Recommendation J. 222. 3" Third-generation transmission systems for interactive cable 

television services - IP cable modems: Security services". 

2.2 Informative references 

The following referenced documents are not essential to the use of the present document but they assist the user with 
regard to a particular subject area. For non-specific references, the latest version of the referenced document (including 
any amendments) applies. 

[i.2] ETSI TS 102 639-3: "Access and Terminals, Transmission and Multiplexing (ATTM); Third 

Generation Transmission Systems for Interactive Cable Television Services - IP Cable Modems; 
Part 3: Downstream Interface [ITU-T Recommendation J. 210 (1 1/2006), modified]". 
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[i.3] ETSI TS 102 639-1: "Access and Terminals, Transmission and Multiplexing (ATTM); Third 

Generation Transmission Systems for Interactive Cable Television Services - IP Cable Modems; 
Part 1: General". 

[i.4] ETSI ES 201 488: "Access and Terminals (AT); Data Over Cable Systems; Part 1: General". 

[i.5] ITU-T Recommendation J.222.1: "Third-generation transmission systems for interactive cable 

television services - IP cable modems: Physical layer specification". 

[i.6] ITU-T Recommendation J. 2 10: "Downstream RF Interface for Cable Modem Termination 

Systems". 

[i.7] ITU-T Recommendation J.222.2: "MAC and Upper Layer protocols for third-generation 

transmission systems for interactive cable television services - IP cable modems". 

[i.8] ITU-T Recommendation J. 1 12: "Transmission systems for interactive cable television services". 

[i.9] ITU-T Recommendation J. 170: "IPCablecom security specification". 

[i.lO] ITU-T Recommendation X.690: "Information technology - ASN.l encoding rules: Specification of 

Basic Encoding Rules (BER), Canonical Encoding Rules (CER) and Distinguished Encoding 
Rules (DER)". 



3 Definitions and abbreviations 

3.1 Definitions 

For the purposes of the present document, the following terms and definitions apply: 

DER Encoded: Refers to a value which is encoded using the ASN.l Distinguished Encoding Rules (see ITU-T 
Recommendation X.690 [i.ll]). 

downstream: flow of signals from the cable system control center through the distribution network to the customer 

NOTE: For communication purposes, associated with transmission (down) to the end-user. 

dynamically-joined multicast sessions: multicast sessions joined after cable modem registration 

key transition period: time period in which an Authentication Key that is near its expiration is replaced by a new 
Authentication Key through a negotiated update process between the CMTS and the CM 

MAC domain: logical link layer network consisting of a common address scheme (such as IEEE 802.3 Ethernet) in 
which elements may send and receive OSI layer 2 messages between and among one another 

NOTE: MAC domain boundaries may be established through both physical and logical means; separate channels 
or subchannels utilizing differing frequency and/or encoding methods, or assigning separate 
bundles/bridge groups or subinterfaces to common frequency-domain channels or subchannels. 

static multicast sessions: multicast sessions joined during cable modem registration 

upstream: term used to describe traffic and paths that go from the subscriber to the headend 

3.2 Abbreviations 

For the purposes of the present document, the following abbreviations apply: 

ASN.l Abstract Syntax Notation 1 

CM Cable Modem 

CMCl Cable Modem to Customer Premises Equipment Interface 

CMTS Cable Modem Termination System 

CRL Certificate Revocation List 
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DER Distinguished Encoding Rules 

DES Data Encryption Standard 

DHCP Dynamic Host Configuration Protocol 

DOCSIS Data-Over-Cable Service Interface Specifications 

FIPS Federal Information Processing Standard 

HMAC Keyed-Hash Message Authentication Code 

IEEE Institute of Electrical and Electronics Engineers 

IP Internet Protocol 

IPR Intellectual Property Rights 

IPv6 Version 6 of the Internet Protocol 

ISO International Organization for Standards 

MAC Media Access Control 

MMH Multilinear Modular Hash 

OCSP Online Certificate Status Protocol 

RFC Request For Comments 

RSA Rivest, Shamir, Adleman (a public key cryptographic algorithm) 

RTP Real-time Transport Protocol 

SA Security Association 

SET Secure Electronic Transaction 

SHA-1 Secure Hash Algorithm 1 

TFTP Trivial File Transfer Protocol 

Endorsement notice 

Modifications to ITU-T Recommendation J.222.3 

The elements of ITU-T Recommendation J.222.3 [3] (07/2007) apply, with the following modifications: 
NOTE: Underlining and/or strike-out are used to highlight detailed modifications where necessary. 
Replace references given in J.222.3 as shown in table 1. 

Table 1 





Reference(s) in J.222.3 [3] 


Replaced reference(s) 


1 


ITU-T Recommendation J.222.1 


ETSI TS 102 639-2 


2 


ITU-T Recommendation J. 210 


ETSI TS 102 639-3 


3 


ITU-T Recommendation J.222.2 


ETSI TS 102 639-4 


4 


ITU-T Recommendation J.222.3 


ETSI TS 102 639-5 


5 


ITU-T Recommendation J.1 12 


ETSI ES 201 488 


6 


ITU-T Recommendation J. 122 


ETSI ES 202 488-2 


7 


ITU-T Recommendation J. 170 


ETSI TS 101 909-11 
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